Ricoh Aficio MP 8001 sec

Ricoh Aficio MP 8001 Manual

Get Ricoh Aficio MP 8001 PDF manuals and user guides View all Ricoh Aficio MP 8001 manuals
Add to My Manuals
Save this manual to your list of manuals

Ricoh Aficio MP 8001 manual content summary:

  • Ricoh Aficio MP 8001 | sec - Page 1
    imagio MP 7501/6001 series, Aficio MP 9001/8001/7001/6001 series Security Target Author : Date : Version : RICOH COMPANY, LTD. 2010-08-31 1.00 Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 2
    Page 1 of 82 Version 1.00 Date 2010-08-31 Revision History Author RICOH COMPANY, LTD. Detail Released version. Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 3
    1.4.4 Logical Boundaries of TOE 18 1.4.4.1 Basic Functions 19 1.4.4.2 Security Functions 21 1.4.5 Protected Assets 25 1.4.5.1 Document Data 25 1.4.5.2 Print Data 25 2 Conformance Claim 26 2.1 CC Conformance Claim 26 2.2 PP Claims, Package Claims 26 2.3 Conformance Rationale 26 3 Security
  • Ricoh Aficio MP 8001 | sec - Page 4
    FAU: Security audit 35 6.1.2 Class FCS: Cryptographic support 40 6.1.3 Class FDP: User data protection 41 6.1.4 Requirements Rationale 63 7 TOE Summary Specification 64 7.1 TOE Security Function 64 7.1.1 SF.AUDIT Audit Function 68 Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 5
    Password Feedback Area Protection 69 7.1.2.4 Password Network Communication Data Protection Function 76 7.1.7.1 Use of Web Service Function from Client Computer 76 7.1.7.2 Printing and Faxing from Client Computer 76 7.1.7.3 Sending by E-mail from TOE 76 7.1.7.4 Delivering to Folders
  • Ricoh Aficio MP 8001 | sec - Page 6
    48 Table 20: List of specifications of Management Functions 50 Table 21: Services requiring trusted paths...54 Table 22 28: Unlocking administrators for each user role 69 Table 29: Default value for document data ACL 71 Table 30: Operations on document 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 7
    Page 6 of 82 Table 34: List of encryption operations on data stored on the HDD 76 Table 35: Specific terms used in this ST...78 Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 8
    /6001 series, Aficio MP 9001/8001/7001/6001 series Security Target Version : 1.00 Date : 2010-08-31 Author : RICOH COMPANY, LTD. 1.2 TOE Reference This TOE is a digital multi function product (hereafter called "MFP") with an optional product, Fax Controller Unit (hereafter called "FCU"). The
  • Ricoh Aficio MP 8001 | sec - Page 9
    -Rotary MP 7001 - Rex-Rotary MP 8001 - Rex-Rotary MP 9001 - infotec MP 6001 - infotec MP 7001 - infotec MP 8001 - infotec MP 9001 MFP Model : SP MFP Version : Software System/Copy Network Support Scanner Printer Fax Web Support 1.15 8.65 01.19 1.15 02.00.00 1.09 Copyright (c) 2010 RICOH COMPANY
  • Ricoh Aficio MP 8001 | sec - Page 10
    Digital MFP, Documents, Copy, Print, Scanner, Fax, Network, Office 1.3 TOE scanning device, and electronic documents are input by receiving them from a client computer via a network, USB connection, or fax. The output function includes printing, Fax Transmission, and transferring to networked
  • Ricoh Aficio MP 8001 | sec - Page 11
    Network Communication Data Protection Function 6. Security Management Function 7. Service The TOE can be connected to other devices over a network, telephone line, or USB connection, according to users' Panel, a client computer connected to the local network, or a client computer connected to the TOE
  • Ricoh Aficio MP 8001 | sec - Page 12
    -installed on the client computer. To print and fax from the client computer via the internal network or USB connection, the printer driver (RPCS printer driver for Ricoh imagio MP 7501/6001 series MFP and the PCL printer driver for Ricoh Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 13
    Page 12 of 82 Aficio MP 9001/8001/7001/6001 series MFP) and fax driver must be downloaded and installed into the client computer from the website indicated in the user guidance. FTP Server FTP server is used for the TOE to deliver the document data stored in the TOE to folders in FTP server. SMB
  • Ricoh Aficio MP 8001 | sec - Page 14
    The Engine Control Software sends information about the status of the Scanner Engine and Printer Engine to the MFP Control Software, and operates the Scanner Engine or Printer Engine according to instructions from the MFP Control Software. Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 15
    information about the status of fax communications and controls the fax communications according to instructions from the MFP Control Software. . [FlashROM] A memory medium that System/Copy, Network Support, Fax, Web Support, Web Uapl, and Network Doc Box are installed on. These components identify
  • Ricoh Aficio MP 8001 | sec - Page 16
    SDCard that the scanner and printer are installed on. The scanner and printer are part of the MP 6001/MP 7001/MP 8001/MP 9001 LD360/LD370/LD380/LD390 Aficio MP 6001/7001/8001/9001 Operating Instructions About This Machine - 9060/9070/9080/9090 MP 6001/MP 7001/MP 8001/MP 9001 Copyright (c) 2010 RICOH
  • Ricoh Aficio MP 8001 | sec - Page 17
    Aficio MP 6001/7001/8001/9001 Operating Instructions Copy and Document Server Reference - Quick Reference Copy Guide - Quick Reference Fax Guide - Quick Reference Printer Guide - Quick Reference Scanner Guide - Manuals for Users 9060/9060sp/9070/9070sp/9080/9080sp/9090/9090sp MP 6001/MP 6001 SP/MP
  • Ricoh Aficio MP 8001 | sec - Page 18
    Page 17 of 82 MP 6001/MP 6001 SP/MP 7001/MP 7001 SP/MP 8001/MP 8001 SP/MP 9001/MP 9001 SP Aficio MP 6001/MP 6001 SP/MP 7001/MP 7001 SP/MP 8001/MP 8001 SP/MP 9001/MP 9001 SP - Notes for Security Functions - Notes for Administrators: Using this Machine in a CC-Certified Environment 1.4.3 User Roles
  • Ricoh Aficio MP 8001 | sec - Page 19
    to be a supervisor by the responsible manager can change the supervisor ID and password of the default supervisor. 1.4.3.4 General User A "general user" is an authorised TOE user who is registered in the Address Book by a user administrator. General users can store document data in the TOE and
  • Ricoh Aficio MP 8001 | sec - Page 20
    of TOE 1.4.4.1 Basic Functions Basic Functions include the Copy Function, Printer Function, Fax Function, Scanner Function, Document Server Function, and Management Function, which are operated from the Operation Panel, and the Web Service Function, which is operated from the Web browser of
  • Ricoh Aficio MP 8001 | sec - Page 21
    scanned image data in the D-BOX as document data. In addition, document data stored in the D-BOX using the Copy Function, Printer Function, Fax Function, or Document Server Function can be printed and deleted using the Document Server Function. Document data stored in the D-BOX using the Scanner
  • Ricoh Aficio MP 8001 | sec - Page 22
    Address Book functions, no evaluation based on this document is applied to these functions. Web Service Copy Function, Document Server Function, Fax Function, or Printer Function can be printed. When document data is printed, the Print Setting information for the stored document data will be updated
  • Ricoh Aficio MP 8001 | sec - Page 23
    for user identification and authentication. However, when printing or faxing from a client computer, this function sends the user's ID and authentication details to the TOE after the users enters their user ID and authentication details from printer or fax drivers, which are outside the TOE. The TOE
  • Ricoh Aficio MP 8001 | sec - Page 24
    or print data is sent. The network administrator decides the communication protocol to apply based on the environment in which the TOE is operating and the intended usage of the TOE. 1. Download document data using the Web Service Function from a client computer (SSL protocol) 2. Print or fax from
  • Ricoh Aficio MP 8001 | sec - Page 25
    data default ACL. Address Book, with the exception of their user IDs. 4. Management of supervisor information A supervisor can change his/her supervisor ID and password Service Mode Lock Function set to "On". Telephone Line Intrusion Protection Function This function is for devices equipped with a Fax
  • Ricoh Aficio MP 8001 | sec - Page 26
    the following two methods: 1. From a scanner Document data is created from the scanned image of a paper original that is imported to the TOE. 2. From the network or from a device connected to the USB Port Document data is created from print data received through the network or the USB Port that is
  • Ricoh Aficio MP 8001 | sec - Page 27
    following package: Package: EAL3 conformant 2.3 Conformance Rationale Since this ST does not claim conformance to PPs, there is no rationale for PP conformance. Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 28
    Page 27 of 82 3 Security Problem Definitions This section provides details of threats, organisational security illegally obtain, leak, or tamper with document data or print data sent or received by the TOE via the internal network. T.FAX_LINE (Intrusion from telephone line) Attackers may gain
  • Ricoh Aficio MP 8001 | sec - Page 29
    maliciously. A.NETWORK (Assumption for network connections) When the network that the TOE is connected to (the internal network) is connected to an external network such as the Internet, the internal network shall be protected from the external network. Copyright (c) 2010 RICOH COMPANY, LTD
  • Ricoh Aficio MP 8001 | sec - Page 30
    the HDD into a format that is difficult to decode. O.NET.PROTECT (Protection of network communication data) The TOE shall protect document data and print data travelling over the communication network from interception, and detect any tampering. O.GENUINE (Protection of integrity of MFP Control
  • Ricoh Aficio MP 8001 | sec - Page 31
    connected to the Fax Unit. 4.2 Security Objectives of Operational Environment The following describes the security objectives of the operational environment. OE.ADMIN (Trusted administrators) The responsible manager of the MFP shall select trusted persons as administrators and instructs them on
  • Ricoh Aficio MP 8001 | sec - Page 32
    Environment A.ADMIN A.SUPERVISOR A.NETWORK T.ILLEGAL_USE NET.PROTECT O.GENUINE O.LINE_PROTECT OE.ADMIN OE.SUPERVISOR OE.NETWORK v vv vv v vv v instruct general users to operate the TOE securely also. Additionally, administrators are unlikely to abuse their permissions. As specified by OE.ADMIN
  • Ricoh Aficio MP 8001 | sec - Page 33
    network) is connected to an external network such as the Internet, the internal network shall be protected from unauthorised communications originating from the external network. As specified by OE.NETWORK, if the internal network can Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 34
    path) To counter this threat, the TOE protects document data and print data on communication path from leakage, and detects tampering. In addition, threat, the TOE prevents the intrusion from a telephone line connected to Fax Unit to the TOE by O.LINE_PROTECT. In addition, the performance of
  • Ricoh Aficio MP 8001 | sec - Page 35
    new security requirements and security assurance requirements that are not described in the CC, which is claimed the conformance in "2.1 CC Conformance Claim". Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 36
    taken due to the audit storage failure. Auditable events of TOE Auditable events not recorded. Auditable events not recorded. Auditable events not recorded. Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 37
    to perform an operation on an object covered by the SFP. c) Detailed: The specific security attributes used in making an access check. None a) Minimal: Decisions to - a) Minimal 1. Fax Function: Reception a) Minimal 1. Lockout start 2. Lockout release - Copyright (c) 2010 RICOH COMPANY, LTD. All
  • Ricoh Aficio MP 8001 | sec - Page 38
    Modifications of the default setting of permissive Login (Outcome: Success/Failure) b) Basic 1. Login (Outcome: Success/Failure) 1. Adding and deleting administrator roles 2. Changingdocument data ACL Auditable events not recorded. Copyright (c) 2010 RICOH
  • Ricoh Aficio MP 8001 | sec - Page 39
    deleting administrator roles. a) Minimal 1. Changing time and date of system clock. - 1. Communication with trusted IT products (Outcome: Success/Failure, Communication IP address) Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 40
    included in the PP/ST, [assignment: communication IP address, IDs of persons whose authentication information is created/changed/ release, IDs of object document data]. FAU_SAR.1 Audit review Hierarchical to: No other components. Dependencies: FAU_GEN.1 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 41
    audit trail is full. 6.1.2 Class FCS: Cryptographic support FCS_CKM.1 Cryptographic key generation Hierarchical to: No generation algorithm TRNG Cryptographic key size 256 bits FCS_COP.1 Cryptographic operation Hierarchical to: No 7]. Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 42
    41 of 82 Standard FIPS197 Cryptographic algorithm AES Cryptographic key size 256 bits Cryptographic operations - Encryption when writing the document data on HDD. roles - General user ID - Document data default ACL - Document data ACL Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 43
    data. When the document data is stored, the document data default ACL associated with the general user process is copied to the document data ACL associated with the document data. A the [assignment: telephone line information flow SFP] on Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 44
    type of received data from a telephone line is recognised as fax data, the fax process on the Fax Unit allows Fax Reception on the Controller Board to let data received from a attributes that explicitly deny information flows]. Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 45
    Web browser User authentication when printing from client computer User authentication when faxing from client computer FIA_AFL.1.2 When Table 15: Lockout release actions Lockout release actions Auto Lockout Release Manual Lockout Release Details If the user fails to authenticate after making the
  • Ricoh Aficio MP 8001 | sec - Page 46
    assignment: general user IDs, document data default ACL, administrator IDs, administrator roles and ) Symbols: SP (spaces 33 symbols) (2) Registerable password length: For general users No fewer than the Minimum Password Length specified : Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 47
    82 bullets) for one letter of passwords on authentication feedback] to the user of that user: [assignment: general user IDs, document data default ACL, administrator IDs, administrator roles and supervisor ID]. FIA_USB.1.2 components. Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 48
    control] FMT_SMR.1 Security roles FMT_SMF.1 Specification of Management Functions FMT_MSA.1.1 The TSF delete Query, change Query, modify Document data default ACL (a data item of general user assignment: MFP access control SFP] to provide default values [selection: [assignment: specified as shown
  • Ricoh Aficio MP 8001 | sec - Page 49
    Security attribute associated with object Document data ACL Default value and its characteristic at time of object other components. Dependencies: FMT_SMR.1 Security roles FMT_SMF.1 Specification of Management Functions FMT_MTD.1.1 The TSF shall restrict Copyright (c) 2010 RICOH COMPANY, LTD.
  • Ricoh Aficio MP 8001 | sec - Page 50
    Password Length Password Complexity Setting HDD cryptographic key Audit logs Service ) Destination information for Deliver to Folder Query, modify Query, modify Query administrator, Network administrator, specifications of Management Functions described in Table 20 Copyright (c) 2010 RICOH
  • Ricoh Aficio MP 8001 | sec - Page 51
    Table 20: List of specifications of Management Functions Page 50 of 82 Functional requirements FAU_GEN.1 FAU_SAR.1 FAU_SAR.2 the following settings of the machine control data: - Minimum Password Length - Password Complexity Setting Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 52
    of the user identities. a) An authorised administrator can define default subject security attributes. b) An authorised administrator can change subject security management of supervisor ID by supervisor. a) None: Default subject security attributes cannot be defined. b) Administrators can
  • Ricoh Aficio MP 8001 | sec - Page 53
    default ACL for all general user information registered to the Address Book. - Allows general users to modify the document data default trusted channel, if supported. a) Configuring the actions that require trusted path, if supported. None: No groups 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 54
    file administrator, user administrator, and network administrator) and a supervisor]. FMT_SMR integrity of stored TSF executable code. 6.1.7 Class FTP: Trusted path Folders from TOE to SMB server (IPSec) service and Deliver to Folders from TOE to FTP server (IPSec) service]. Copyright (c) 2010 RICOH
  • Ricoh Aficio MP 8001 | sec - Page 55
    path for [selection: initial user authentication, [assignment: TOE web service, printing service from a client computer, fax esrvice from a client computer, and e-mail service to a client computer from the TOE]]. Table 21 shows the services that require the trusted path defined in FTP_TRP.1.3 and
  • Ricoh Aficio MP 8001 | sec - Page 56
    ADV: Development AGD: Guidance documents ALC: Life-cycle support ASE: Security Target evaluation ATE: Tests AVA: Vulnerability architecture description Functional specification with complete Architectural design security requirements Security problem definition TOE summary specification Analysis of
  • Ricoh Aficio MP 8001 | sec - Page 57
    FAU_GEN.1 v FAU_SAR.1 v FAU_SAR.2 v FAU_STG.1 v FAU_STG.4 v FCS_CKM.1 v FCS_COP.1 v FDP_ACC.1 v FDP_ACF.1 v FDP_IFC.1 v FDP_IFF.1 v FIA_AFL.1 v FIA_ATD.1 v FIA_SOS.1 v FIA_UAU.2 v FIA_UAU.7 v FIA_UID.2 v Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 58
    to O.AUDIT in Table 23, and these requirements are included to fulfil the O.AUDIT specification. a) Record audit logs To fulfil O.AUDIT, the performance of Security Functions should be over audit logs that have the oldest time stamp. Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 59
    should be available, as this will help identify security breaches. For this, FPT_STM to fulfil the O.I&A specification. a) Identify and authenticate Complicate decoding of passwords. To fulfil O.I&A, passwords for user authentication a client computer when printing or faxing. O.DOC_ACC Control of
  • Ricoh Aficio MP 8001 | sec - Page 60
    specification. 1. Management of security attributes. To fulfil O.MANAGE, management of security attributes shall be permitted to specified users only, and a default the service mode service mode lock setting; - the user administrator to query and specify the Minimum Password Length, Password folders
  • Ricoh Aficio MP 8001 | sec - Page 61
    MEM.PROTECT specification. a) Generate at a key size of 256 bits with TRNG for the encryption print data on the network from leakage, and detects attempts at tampering. The SSL protocol protects document data and print data that are is travelling through a web service, print service, or fax service
  • Ricoh Aficio MP 8001 | sec - Page 62
    For this, FPT_TST.1 tests the integrity of the executable code of the MFP Control Software, and verifies its integrity at to fulfil the O.LINE.PROTECT specification. a) Prohibit intrusion via the fax line. To fulfil O.LINE_PROTECT, None Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 63
    Dependencies on FIA_UAU.1 Since this TOE employs FIA_UAU.2, which is hierarchical to FIA_UAU.1, the dependency on FIA_UAU.1 is satisfied by FIA_AFL.1 and FIA_UAU.7. Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 64
    therefore important also. Based on the terms and costs of the evaluation, the evaluation assurance level of EAL3 is appropriate for this TOE. Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 65
    Security Functions of this TOE. Page 64 of 82 7.1 TOE Security Function SF.CE_OPE_LOCK Service Mode Lock Function SF.CIPHER Encryption Function SF.NET_PROT Network Communication FAU_STG.4 v FCS_CKM.1 v FCS_COP.1 v FDP_ACC.1 v Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 66
    and delete entire audit logs. Following are explanations of each functional item in "SF.AUDIT Audit Function" and their corresponding security functional requirements. Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 67
    Ending Audit Function (*1) Login Starting Lockout Releasing data Receiving fax Changing user password (including who is to be released Release methods (auto Lockout release/manual Lockout release) - ID of object document data ID address Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 68
    operational object document data are printing, Sending by E-mail, Delivering to Folders and downloading from Web Service Function the document data stored text format using theWeb Service Function. By the above, FAU_SAR.1 (Audit review), FAU_SAR.2 (Restricted audit review), and FMT_MTD.1 (Management
  • Ricoh Aficio MP 8001 | sec - Page 69
    7.1.2.1 User Identification and Authentication The TOE displays a login window when users attempt to usethe TOE Security Functions from the Operation Panel or the Web Service Function. This window requires the user to enter their ID and password, and then identifies and authenticates the user based
  • Ricoh Aficio MP 8001 | sec - Page 70
    This function checks if the password to be registered or changed meets conditions (2) and (3). If it does, the password is registered. If it does not, the password is not registered and an error message appears. (1) Usable characters and its types: Copyright (c) 2010 RICOH COMPANY, LTD. All Rights
  • Ricoh Aficio MP 8001 | sec - Page 71
    10 digits) Symbols: SP (space 33 symbols) (2) Registerable password length: General users No fewer than the Minimum Password Length specified by Password Complexity Setting. By the above, FIA_SOS.1 (Verification of secrets) and FMT_SMF.1 (Specification of RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 72
    default ACL By the above, FDP_ACC.1 (Subset access control) and FDP_ACF.1 (Security attribute based access control) are satisfied. 7.1.3.2 File Administrator Operations on Document Data If the logged-in user from the Operation Panel or Web Service (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 73
    .3 (Static attribute initialisation), and FMT_SMF.1 (Specification of management functions) are satisfied. 7.1.4.2 Management from the Operation Panel or Web Service Function. Administrator information includes administrator administrator role Copyright (c) 2010 RICOH COMPANY, LTD. All Rights
  • Ricoh Aficio MP 8001 | sec - Page 74
    .1 (Specification of Panel or Web Service Function. If the Address Book (general user ID, document data default ACL, S/MIME user information) Authorised user User administrators User administrators General users themselves User administrators General users themselves Copyright (c) 2010 RICOH
  • Ricoh Aficio MP 8001 | sec - Page 75
    information registered to Address Book (S/MIME user information) Authorised user General users User administrators General users identified as the S/MIME users When new general user information is created, the new general user ID will be set to the value of the document data default ACL as the
  • Ricoh Aficio MP 8001 | sec - Page 76
    can use to generate the HDD encryption keys. When the machine administrator uses the Operation Panel to instruct the TOE to generate an HDD encryption key, the TOE generates a 256-bit HDD encryption key using the TRNG encryption key Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 77
    FIPS197 AES Key size 256 bits The HDD encryption keys can also be printed. If the logged-in user Service Function, the TOE communicates with the client computer using the SSL protocol to create a trusted path. By the above, FTP_TRP.1 (Trusted path) is satisfied. 7.1.7.2 Printing and Faxing
  • Ricoh Aficio MP 8001 | sec - Page 78
    Users can send filesreferringto the registered folder information only. By the above, Board. If the received data is not fax data, the TOE discards it. By the The TOE verifies the integrity of the executable code of the MFP Control Software each time the RICOH COMPANY, LTD. All Rights Reserved.
  • Ricoh Aficio MP 8001 | sec - Page 79
    such as system/copy, network support, scanner, printer, fax, Web support, Web Uapl, and Network Doc Box. Manages address, user certificates, and a specified value for S/MIME use. A server for sharing files with a client computer using Server Message Block Protocol. Copyright (c) 2010 RICOH
  • Ricoh Aficio MP 8001 | sec - Page 80
    TOE Address Book from backups made on SD cards. A function that reads a fax original then converts the scanned image to an e-mail format for sending as data over the Internet to a machine with an e-mail address. An expert in TOE maintenance who is employed by a manufacturer, support service company
  • Ricoh Aficio MP 8001 | sec - Page 81
    default ACL, and S/MIME user information A password for identification and authentication of a general user. The document files in a client computer that are sent to the TOE from a client computer to be printed or faxed. Drivers must be installed in the client computer in advance: a printer driver
  • Ricoh Aficio MP 8001 | sec - Page 82
    data stored in D-BOX can be printed at a later time. A function that faxes document data stored earlier in the D-BOX. A function that prints print data received by the TOE. A function that dials first then faxes data while scanning the original. Networks managed by an organisation that has an
  • Ricoh Aficio MP 8001 | sec - Page 83
    methodology Revision 2(CCMB-2007-09-0004) "Japanese-translated version" Common Methodology for Information Technology Security Evaluation version 3.1 Evaluation Methodology Revision 2 [Japanese translation ver. 2.0] Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
Copyright (c) 2010 RICOH COMPANY, LTD. All Rights Reserved.
imagio MP 7501/6001 series,
Aficio MP 9001/8001/7001/6001 series
Security Target
Author :
RICOH COMPANY, LTD.
Date
:
2010-08-31
Version :
1.00